CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Boot Div WP Sitemap wpsitemap allows Stored XSS.This issue affects WP Sitemap: from n/a through = 1.0.0...

6.5CVSS7.2AI score0.00883EPSS

Exploits0References1

NVD•added 2025/04/01 3:16 p.m.•3 views

CVE-2025-31733

6.5CVSS0.00883EPSS

Exploits0References1

CVE•added 2025/04/01 2:51 p.m.•43 views

CVE-2025-31733

CVE-2025-31733 is a stored XSS vulnerability in the WP Sitemap WordPress plugin. Connected sources confirm the affected product as WP Sitemap, with version scope “

6.5CVSS7.2AI score0.00883EPSS

Exploits0References1

Vulnrichment•added 2025/04/01 2:51 p.m.•9 views

CVE-2025-31733 WordPress WP Sitemap Plugin <= 1.0.0 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Boot Div WP Sitemap allows Stored XSS. This issue affects WP Sitemap: from n/a through 1.0.0...

6.5CVSS6.9AI score0.00883EPSS

Exploits0References1

Cvelist•added 2025/04/01 2:51 p.m.•11 views

CVE-2025-31733 WordPress WP Sitemap Plugin <= 1.0.0 - Cross Site Scripting (XSS) vulnerability

6.5CVSS0.00883EPSS

Exploits0References1

RedhatCVE•added 2025/02/26 3:24 p.m.•4 views

CVE-2025-27312

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Jenst WP Sitemap wp-sitemap allows SQL Injection.This issue affects WP Sitemap: from n/a through = 1.0...

8.5CVSS7.3AI score0.00061EPSS

Exploits0References1

NVD•added 2025/02/24 3:15 p.m.•2 views

CVE-2025-27312

8.5CVSS0.00061EPSS

Exploits0References1

Vulnrichment•added 2025/02/24 2:48 p.m.•10 views

CVE-2025-27312 WordPress WP Sitemap plugin <= 1.0 - SQL Injection vulnerability

8.5CVSS7.3AI score0.00061EPSS

Exploits0References1

Cvelist•added 2025/02/24 2:48 p.m.•9 views

CVE-2025-27312 WordPress WP Sitemap plugin <= 1.0 - SQL Injection vulnerability

8.5CVSS0.00061EPSS

Exploits0References1

CVE•added 2025/02/24 2:48 p.m.•60 views

CVE-2025-27312

CVE-2025-27312 refers to an SQL Injection in the WordPress plugin WP Sitemap (versions up to 1.0). The root cause is improper neutralization of special elements used in SQL commands. Reported CVSS 3.1 vector indicates network access, low attack complexity, and required privileges with a base scor...

8.5CVSS7.3AI score0.00061EPSS

Exploits0References1

NVD•added 2023/12/17 10:15 a.m.•14 views

CVE-2023-24380

Cross-Site Request Forgery CSRF vulnerability in Webbjocke Simple Wp Sitemap.This issue affects Simple Wp Sitemap: from n/a through 1.2.1...

8.8CVSS0.001EPSS

Exploits0References1

Prion•added 2023/12/17 10:15 a.m.•21 views

Cross site request forgery (csrf)

Cross-Site Request Forgery CSRF vulnerability in Webbjocke Simple Wp Sitemap.This issue affects Simple Wp Sitemap: from n/a through 1.2.1...

6.8CVSS7.2AI score0.001EPSS

Exploits0References1Affected Software1

Cvelist•added 2023/12/17 9:46 a.m.•23 views

CVE-2023-24380 WordPress Simple Wp Sitemap Plugin <= 1.2.1 is vulnerable to Cross Site Request Forgery (CSRF)

Cross-Site Request Forgery CSRF vulnerability in Webbjocke Simple Wp Sitemap.This issue affects Simple Wp Sitemap: from n/a through 1.2.1...

4.3CVSS8.9AI score0.001EPSS

Exploits0References1

CVE•added 2023/12/17 9:46 a.m.•36 views

CVE-2023-24380

CVE-2023-24380 is a CSRF vulnerability in the Simple Wp Sitemap WordPress plugin, affecting versions

8.8CVSS8.5AI score0.001EPSS

Exploits0References1Affected Software1

CNNVD•added 2023/12/17 12:0 a.m.•0 views

WordPress Plugin Simple Wp Sitemap Cross-Site Request Forgery Vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A cross-site request forgery vulnerability...

8.8CVSS6.5AI score0.001EPSS

Exploits0References3

NVD•added 2021/11/01 9:15 a.m.•13 views

CVE-2021-24715

The WP Sitemap Page WordPress plugin before 1.7.0 does not properly sanitise and escape some of its settings, which could allow high privilege users to perform Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed...

4.8CVSS0.00225EPSS

Exploits2References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by